Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-10 | CVE-2022-44610 | Improper Authentication vulnerability in Intel Data Center Manager Improper authentication in the Intel(R) DCM software before version 5.1 may allow an authenticated user to potentially enable escalation of privilege via network access. | 8.8 |
| 2023-05-10 | CVE-2023-27919 | Improper Authentication vulnerability in Next-Engine Next Engine Integration Authentication bypass vulnerability in NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series) all versions allows a remote unauthenticated attacker to alter the information stored in the system. | 5.3 |
| 2023-05-08 | CVE-2023-31127 | Improper Authentication vulnerability in Dmtf Libspdm libspdm is a sample implementation that follows the DMTF SPDM specifications. | 8.8 |
| 2023-05-08 | CVE-2023-28182 | Improper Authentication vulnerability in Apple Iphone OS and Macos The issue was addressed with improved authentication. | 6.5 |
| 2023-05-04 | CVE-2023-21484 | Improper Authentication vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control vulnerability in AppLock prior to SMR May-2023 Release 1 allows local attackers without proper permission to execute a privileged operation. | 7.8 |
| 2023-05-04 | CVE-2023-21487 | Improper Authentication vulnerability in Samsung Android 11.0/12.0/13.0 Improper access control vulnerability in Telephony framework prior to SMR May-2023 Release 1 allows local attackers to change a call setting. | 3.3 |
| 2023-05-04 | CVE-2023-30328 | Improper Authentication vulnerability in Mailbutler Shimo 5.0.4 An issue in the helper tool of Mailbutler GmbH Shimo VPN Client for macOS v5.0.4 allows attackers to bypass authentication via PID re-use. | 9.8 |
| 2023-05-03 | CVE-2022-45860 | Improper Authentication vulnerability in Fortinet Fortinac and Fortinac-F A weak authentication vulnerability [CWE-1390] in FortiNAC-F version 7.2.0, FortiNAC version 9.4.2 and below, 9.2 all versions, 9.1 all versions, 8.8 all versions, 8.7 all versions in device registration page may allow an unauthenticated attacker to perform password spraying attacks with an increased chance of success. | 7.5 |
| 2023-05-03 | CVE-2022-30995 | Improper Authentication vulnerability in Acronis Cyber Backup and Cyber Protect Sensitive information disclosure due to improper authentication. | 7.5 |
| 2023-05-02 | CVE-2023-30869 | Improper Authentication vulnerability in Awesomemotive Easy Digital Downloads Improper Authentication vulnerability in Easy Digital Downloads plugin allows unauth. | 9.8 |